CVE-2025-6777

Name of the Vulnerable Software and Affected Versions: code-projects Food Distributor Site version 1.0

Description: A critical issue has been found in the processing of the file /admin/process login.php. The manipulation of the username and password arguments leads to SQL injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Recommendations: For code-projects Food Distributor Site version 1.0, consider disabling the /admin/process login.php file until a patch is available. Restrict access to this file to minimize the risk of exploitation. Avoid using the username and password arguments in the affected API endpoint until the issue is resolved.